Library used to check the OCSP revocation status for a x509 digital certificate.
Project description
OCSP-Checker
Overview
OCSP-Checker is a python package based on Alban Diquet's nassl wrapper and the Python Cryptographic Authority's cryptography package. Relying on a web browser to check the revocation status of a x509 digital certificate has been broken from the beginning, and validating certificates outside of the web browser is a manual process. OCSP-Checker aims to solve this by providing an automated means to check the OCSP revocation status for a x509 digital certificate.
Pre-requisites
Python - Python 3.7 (64-bit) and above.
Installation
pip install ocsp-checker
Usage
>>> from ocspchecker import ocspchecker
>>> ocsp_request = ocspchecker.get_ocsp_status("github.com")
Sample Output
Sample output below, let me know if you want to add more fields/information to the output.
['Host: github.com:443', 'OCSP URL: http://ocsp.digicert.com', 'OCSP Status: GOOD']
PLEASE NOTE: If you run this on a network with a MITM SSL proxy, you may receive unintended results (see below):
["Error: Certificate Authority Information Access (AIA) Extension Missing. Possible MITM Proxy."]
Command Line Usage
OCSP-Checker can now be used at the command line. The format is:
usage: ocsp-checker [-h] --target target [--port port]
Check the OCSP revocation status for a x509 digital certificate.
optional arguments:
-h, --help show this help message and exit
--target target, -t target
The target to test
--port port, -p port The port to test (default is 443)
For example:
ocspchecker -t github.com
Feedback
Send me mail at joe@metlife.com
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file ocsp-checker-1.5.0.tar.gz
.
File metadata
- Download URL: ocsp-checker-1.5.0.tar.gz
- Upload date:
- Size: 5.9 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/50.0.0 requests-toolbelt/0.9.1 tqdm/4.48.0 CPython/3.8.5
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5bccfe45d6476b83cb68cc6bcd04690212a0178837f4dcacb5db01a50bfbeaaa |
|
MD5 | 6a997fbda3f5d3076e5ea39787911fa2 |
|
BLAKE2b-256 | 17e98b3576ca4dc2117fa85456ee064b77e1743e6bc7ad5eb60b21e817820c2f |
File details
Details for the file ocsp_checker-1.5.0-py3-none-any.whl
.
File metadata
- Download URL: ocsp_checker-1.5.0-py3-none-any.whl
- Upload date:
- Size: 10.3 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/3.2.0 pkginfo/1.5.0.1 requests/2.24.0 setuptools/50.0.0 requests-toolbelt/0.9.1 tqdm/4.48.0 CPython/3.8.5
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | e5e23a8e60cb3d3f91c769a6294e0181af46dc7e169c10e721a45396cca725b3 |
|
MD5 | 467cdfd7bd80d2e8ac53cee1c61f371f |
|
BLAKE2b-256 | e8fac154405d5904e118b1c3b0ac003ec8f7fdd5f304ec126d12d0928320d7c7 |